Sample viewer

vx.netlux.org/Virus.DOS.Lobotomy.824

.

GIF

Syscalls:

Time Syscall Op Syscall Name
2018-12-17T22:13:27.88245591Z 53 PC: 13e90 | Get interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:13:27.884951034Z 37 PC: 13ea1 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:13:27.886092084Z 37 PC: 13ea6 | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:13:27.887356086Z 47 PC: 13eaa | Get disk transfer address
2018-12-17T22:13:27.889566631Z 26 PC: 13eb9 | Set disk transfer address
2018-12-17T22:13:27.890643206Z 78 PC: 13ecf | Find first file
2018-12-17T22:13:27.896736462Z 61 PC: 13efe | Open file (Filename = '')
2018-12-17T22:13:27.904379404Z 63 PC: 13f0c | Read file or device (Read 2 bytes on handle 5)
2018-12-17T22:13:27.911349542Z 66 PC: 13f28 | Move file pointer
2018-12-17T22:13:27.913000464Z 63 PC: 13f32 | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:13:27.916748998Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.922565759Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.927910137Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.930093519Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.935779883Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.938246754Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.94036363Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.942904596Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.944874658Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.951808487Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.958290464Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.96040566Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.962299842Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.965024036Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.967285831Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.969531867Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.97219748Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.974362857Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.97627214Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.97875835Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.981020869Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.983361891Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.986930914Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.989162978Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.991202499Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:27.993174574Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:27.999599801Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.00156495Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.003513479Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.006324145Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.008306926Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.010945452Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.01376551Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.015851972Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.017808105Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.020441967Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.022299012Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.024153765Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.026383198Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.028424008Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.03055286Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.033349686Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.035328466Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.03724481Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.039521968Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.041628872Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.043703035Z 67 PC: 140d5 | Get or set file attributes
2018-12-17T22:13:28.046248629Z 65 PC: 140dd | Delete file (Filename = '')
2018-12-17T22:13:28.048270706Z 87 PC: 13f84 | Get or set file date and time
2018-12-17T22:13:28.049653246Z 66 PC: 13f95 | Move file pointer
2018-12-17T22:13:28.051423901Z 63 PC: 13f9f | Read file or device (Read 3 bytes on handle 5)
2018-12-17T22:13:28.053866805Z 66 PC: 13fa8 | Move file pointer
2018-12-17T22:13:28.05518689Z 64 PC: 13fcd | Write file or device (Write 9 bytes on handle 5)
2018-12-17T22:13:28.059057696Z 64 PC: 13fd8 | Write file or device (Write 824 bytes on handle 5)
2018-12-17T22:13:28.074404617Z 66 PC: 13fe1 | Move file pointer
2018-12-17T22:13:28.07597782Z 64 PC: 13ff7 | Write file or device (Write 3 bytes on handle 5)
2018-12-17T22:13:28.083665614Z 87 PC: 14004 | Get or set file date and time
2018-12-17T22:13:28.085444148Z 62 PC: 14008 | Close file
2018-12-17T22:13:28.09377558Z 44 PC: 14047 | Get time 0x14047: cmp dl, 6
0x1404a: jl 0x14051
0x1404c: cmp dh, 0x60
0x1404f: jl 0x1400b
0x14051: mov si, 0x3d2
0x14054: mov cx, 0x1c
0x14057: mov dl, 0xbd
0x14059: xor byte ptr [si], dl
0x1405b: add dl, 0x48
0x1405e: inc si
0x1405f: loop 0x14059
0x14061: mov si, 0x3ee
0x14064: mov cx, 0x14
0x14067: xor byte ptr [si], dl
0x14069: add dl, 0x48
0x1406c: inc si
0x1406d: loop 0x14067
0x1406f: mov si, 0x402
0x14072: mov cx, 0x33
0x14075: xor byte ptr [si], dl
2018-12-17T22:13:28.096604759Z 37 PC: 1401a | Set interrupt vector (Interrupt = '36' AKA 'Set random record number')
2018-12-17T22:13:28.097992536Z 26 PC: 14035 | Set disk transfer address
2018-12-17T22:13:28.099317228Z 9 PC: 12a85 | Display string (Could not find end pointer)
2018-12-17T22:13:28.105844406Z 0 PC: 12a89 | Program terminate